General

  • Target

    44666a663169d3e9ae81f8999d3d3ceb00ac3399f49b3c8c6f91d57a1714dac5N

  • Size

    128KB

  • MD5

    c5c83fbca254cbfc57cf48f2ae172de0

  • SHA1

    1782f1588b408fcb9e4654ef0bbc4a6fc7e0f8cb

  • SHA256

    44666a663169d3e9ae81f8999d3d3ceb00ac3399f49b3c8c6f91d57a1714dac5

  • SHA512

    98266b3ecfbd6f42b62ebb10f89fffe9a0f036d0be9f6935ca63ecdd34939c22af060f8001a7cd9a2f7efc3cb2517b9dafd2e1612c1da201adbd6ea8e85d08d2

  • SSDEEP

    3072:mZS/mgLVUYSQIrx0kWzdH13+EE+RaZ6r+GDZnr:mZS/mgLdSQKZWzd5IF6rfBr

Score
10/10

Malware Config

Extracted

Family

berbew

C2

http://f/wcmd.htm

http://f/ppslog.php

http://f/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d

Signatures

  • Berbew family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 44666a663169d3e9ae81f8999d3d3ceb00ac3399f49b3c8c6f91d57a1714dac5N
    .exe windows:1 windows x86 arch:x86

    26babd76bbb7f9c516a338b0601b4c9f


    Headers

    Imports

    Sections